Presentation is loading. Please wait.

Presentation is loading. Please wait.

Unit OS7: Security 7.4. Quiz Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze.

Similar presentations


Presentation on theme: "Unit OS7: Security 7.4. Quiz Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze."— Presentation transcript:

1 Unit OS7: Security 7.4. Quiz Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze

2 Copyright Notice © 2000-2005 David A. Solomon and Mark Russinovich
These materials are part of the Windows Operating System Internals Curriculum Development Kit, developed by David A. Solomon and Mark E. Russinovich with Andreas Polze Microsoft has licensed these materials from David Solomon Expert Seminars, Inc. for distribution to academic organizations solely for use in academic environments (and not for commercial use)

3 Security Ratings Which of the following is not required for a C2 rating? Encrypted passwords Object reuse protection Secure logon Auditing a) Encrypted passwords

4 C2 Security C2 trusted path is provided by: Secure logon
Directory-level discretionary access control Secure attention sequence Administrator protection of audit logs c) Secure attention sequence

5 Security System Components
What is the heart of the object access protection in Windows? Local Security Authority Security Reference Monitor Active Directory Security Accounts Database b) Security Reference Monitor

6 Security System Components
The Windows security system consists of a number of kernel- and user-mode components. Which one is not among them? Transactional Object Monitor (TOM) Security Accounts Manager (SAM) Graphical Identification and Authentification (GINA) a) Transactional Object Monitor (TOM)

7 Security Settings Changing the security settings for a file in Windows affects: The next open-operation on the file (CreateFile) The next write-operation on the file (WriteFile) The next read-operation on the file (ReadFile) a) The next open-operation on the file (CreateFile)

8 Active Directory The distributed authentication and authorization mechanism in Windows active directory relies on the following security protocol: Odin Zeus Kerberos c) Kerberos

9 Kerberos Kerberos relies on: Symmetric encryption
Asymmetric (public/private key) encryption Secret one way functions a) Symmetric encryption

10 Access Check Which of the following are not referred to for a security access check? Token Discretionary Access Control List (DACL) System Access Control List (SACL) Desired Access c) System Access Control List (SACL)

11 Security Token Which of the following is not part of the Windows Security Token? Account SID Assigned Privileges Handle to Security Reference Monitor List of groups a user belongs to c) Handle to Security Reference Monitor

12 Access Control Entries
Which of the following is a valid access control entry (ACE) type? Allow and Deny Deny all Deny DACL c) Deny

13 Auditing Auditing ACE’s are stored in an object’s: SACL DACL Token SID
a) SACL

14 Impersonation In client/server applications, impersonation is used to let a: Client take on a security identity of a server Client access same objects as the server Server take on a security identity of a client Server access objects on the client system c) Server take on a security identity of a client

15 Privileges When a privilege is needed, the Security Reference Monitor checks this by: Querying the Local Security Authority process Checking privilege in the access token Checking privilege DACL for user access Writing auditing event to the Security event log b) Checking privileges in the access token

16 Acess Control Lists If Alice is a member of the Manager's group and a file she wants to access has a DACL with three ACEs composed as follows, will Alice be able to read from the file? 1st ACE: Bob can't read from the file 2nd ACE: Manager's can't write the file 3rd ACE: Alice can write and delete the file yes no b) no


Download ppt "Unit OS7: Security 7.4. Quiz Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze."

Similar presentations


Ads by Google